Providing privacy enhanced resolution system in the domain name system

摘要

An apparatus and a non-transitory computer-readable medium may perform a method of minimizing the disclosure of a domain name contained in a DNS query. The method may include determining a first label and a second label associated with a domain name included in a DNS query. A first nameserver may be queried for a first resource record type associated with the first label without revealing information related to the second label by removing information related to the second label from the DNS query. A response may be received from the first nameserver, and the response may include the first resource record type which directs a resolver to a second nameserver. The second nameserver may be queried for a second resource record type associated with the first label and the second label.

主权项

1. A non-transitory computer-readable medium encoded with instructions that, when executed on a processor, perform a method of minimizing the disclosure of a domain name contained in a domain name system (DNS) query, the method comprising:
determining a first label and a second label associated with a domain name included in a domain name system (DNS) query; querying a first nameserver for a first resource record type associated with the first label without revealing information related to the second label by removing information related to the second label from the DNS query; receiving a first response from the first nameserver, the first response including the first resource record type which directs a resolver to a second nameserver; querying the second nameserver for a second resource record type associated with the first label and the second label; receiving a second response from the second nameserver, the second response including the second resource record type; and transmitting at least the second resource record type in response to the DNS query.